Amir Husain, Founder and CEO of Sparkcognition,stopped by to chat about the growing importance of cognitive computing to deal with the intractable security problems facing enterprise IT organizations. Husain is a long-time contact in the industry and always offers interesting insights into industry issues and pragmatic solutions. I’ve known him since his time with ClearCube Technology and VDIworks.
Finding important needles in a stack of needles
Husain pointed out that often times attempted security breaches leave telltale entries in various system and application logs but staff security people miss them. This allows the “black hats” to operate for quite some time before their work is detected and the opening in the enterprise defenses is found and sealed. During that time, a great deal of corporate or customer data could be stolen or altered.
He doesn’t blame staff members for this because he understands that it is very hard to examine log entries coming from many systems, many layers of software and many applications to pick out initial indicators that something is amiss.
It’s time for a systematic approach
Husain believes that enterprises would be wise to consider tools that are designed to sift through the ever-growing mounds of operational data generated by today’s multi-site, multi-tier, distributed workloads. Tools are available today, such as Sparkcognition’s own SparkPredict, SparkSecure and MindFabric, that are designed to help address the enterprise IT security problem.
Our conversation was interesting. It is clear that IT security staff are having trouble keeping up with the challenges presented by today’s Internet environment. It is also clear that there is more data available than ever before. This situation has both upsides and negatives.
The upsides are that, with the right tools and processes in place, enterprises can quickly see what’s happening and determine what behavior is normal and expected and what behavior is the leading indicator of a potential breach.
The negatives are that it is becoming more and more difficult to sift through all of the data quickly and effectively enough to prevent problems.
I always enjoy my conversations with Husain and look forward to the next opportunity to speak with him.